[Openswan Users] How to execite TAHI IPSec test cases on an ipsec tunnel..?

mohan chandra mohanchandra_01 at yahoo.co.in
Mon Jun 13 14:33:54 CEST 2005 

Hi,

     I am trying to execute TAHI manual test cases on
my IPSec (VPN) tunnel between 4.11-RELEASE FreeBSD
system(used as Tester Node-TN) and Linux
RELEASE-9(kernel-2.4.20-8)system(used as Node Under
Test-NUT)
It is just an host to host manual ipsec connection
(tunnel).

IPSec implementation used at Freebsd is KAME ipsec
code and at linux is Openswan-2.3.0 . 

But the problems are, 
    
   --> 1) Test cases are using IPv6 addressing format,
which is supported by FreeBSD KAME ipsec, But I don't
know how to use IPv6 addresses for Linux IPSec, still
I tried to up the manual connection with IPV6
addresses, It throws out some error..like..

[root at ram root]# ipsec manual --up host-to-host
ipsec manual: fatal error in "host-to-host": cannot
find interface for 3ffe:ffff:0:f101::1 or
3ffe:ffff:0:f101::2

  --> 2)Second one is, TAHI test cases require Node
Under Test(NUT) i.e., Linux (openswan ipsec) system to
establish inbound and outbound SA's having different
SPI value(i.e., SPI value for inbound SA should be
different from outbound), But Openswan uses the same
spi value for both inbound and outbound SA's as below
shown. At Tester Node(TN) FreeBSD there is no problem,
I can use different or same spi.

############Linux Openswan ipsec##################
[root at ram root]# ipsec spi
esp0x1000 at 172.20.17.84 ESP_3DES_HMAC_SHA1: [dir=in] 
src=172.20.17.16 iv_bits=64bits iv=0x066bed760bb9c24a
alen=160 aklen=160 eklen=192
life(c,s,h)=addtime(46,0,0) refcount=3 ref=9

esp0x1000 at 172.20.17.16 ESP_3DES_HMAC_SHA1: [dir=out]
src=172.20.17.84 iv_bits=64bits iv=0xc3fb6d1cf632e83f
alen=160 aklen=160 eklen=192
life(c,s,h)=addtime(46,0,0) refcount=3 ref=8

######################

Please, anyone help me to solve these problems OR
inform me what else I can do in order to execute the
test cases succussfully... 

Any help will be greatly appreciated..

Thanx.

Regards,
Mohan.



	

	
		
__________________________________________________________
Free antispam, antivirus and 1GB to save all your messages
Only in Yahoo! Mail: http://in.mail.yahoo.com

More information about the Users mailing list